| | 82.220.38.150 | 200 OK | 6.4 kB |
URL User Request GET HTTP/1.0IP82.220.38.150:80 ASN#9044 BSE Software GmbH
File typeXML 1.0 document, ASCII text, with very long lines (494) Hashe00cc421705ce8e100642dbd8c3605c8 5c418cbb4cc5f590a589a394b31b51f7ef6ec65c bf4a2e87916538a2abaa9ba1c001e3664cce1c0611270a66050cd2e4ae3a5c1a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 82.220.38.150
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Sat, 04 May 2024 22:24:57 GMT
Content-Type: text/html
X-Your-Address-Is: 91.90.42.154
Content-Encoding: identity
Content-Length: 6428
Expires: Sat, 04 May 2024 22:44:57 GMT
|
|
| | 82.220.38.150 | 200 OK | 6.4 kB |
URL User Request GET HTTP/1.0IP82.220.38.150:80 ASN#9044 BSE Software GmbH
File typeXML 1.0 document, ASCII text, with very long lines (494) Hashe00cc421705ce8e100642dbd8c3605c8 5c418cbb4cc5f590a589a394b31b51f7ef6ec65c bf4a2e87916538a2abaa9ba1c001e3664cce1c0611270a66050cd2e4ae3a5c1a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 82.220.38.150
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Date: Sat, 04 May 2024 22:24:58 GMT
Content-Type: text/html
X-Your-Address-Is: 91.90.42.154
Content-Encoding: identity
Content-Length: 6428
Expires: Sat, 04 May 2024 22:44:58 GMT
|
|
| www.gdatasoftware.com/fileadmin/_processed_/c/4/G_DATA_Infographic_Tor_V3_EN_930fd1127b.jpg | 212.23.151.164 | 404 Not Found | 6.4 kB |
URL GET HTTP/2www.gdatasoftware.com/fileadmin/_processed_/c/4/G_DATA_Infographic_Tor_V3_EN_930fd1127b.jpg IP212.23.151.164:443 ASN#12329 GLASFASER RUHR GmbH & Co. KG
CertificateIssuerSectigo Limited Subject*.gdatasoftware.com Fingerprint7C:B8:D4:BC:A0:FF:21:8D:24:92:63:CE:ED:83:52:8E:7A:A2:39:2E ValiditySun, 23 Jul 2023 00:00:00 GMT - Thu, 22 Aug 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashfba2825c6e26e41cb823046efbd309b7 2baddae9740191c9e44f5d2486e47b9b406c1ff0 702190738875c7ff98a641a1c7986ed65f3c1d3dd512fe2ab7fa0fa8508c2c70
GET /fileadmin/_processed_/c/4/G_DATA_Infographic_Tor_V3_EN_930fd1127b.jpg HTTP/1.1
Host: www.gdatasoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://82.220.38.150/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sat, 04 May 2024 22:24:58 GMT
content-type: text/html; charset=utf-8
cache-control: no-store, no-cache, must-revalidate
content-encoding: gzip
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
set-cookie: PHPSESSID=22d06d0f8312c855016e1b5541e05f61; path=/; secure; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 0
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.webhostinganbieter.at/wp-content/uploads/2017/06/hosttech.png | 185.101.158.216 | | 1.2 kB |
URL GET www.webhostinganbieter.at/wp-content/uploads/2017/06/hosttech.png IP185.101.158.216:0
CertificateIssuerLet's Encrypt Subjectwebhostinganbieter.at FingerprintE4:48:94:04:39:90:B0:EE:A5:5C:C3:29:FB:0E:45:84:91:1C:90:B7 ValidityTue, 30 Apr 2024 07:58:41 GMT - Mon, 29 Jul 2024 07:58:40 GMT
File typePNG image data, 200 x 200, 4-bit colormap, non-interlaced Hashe22f13d7739071cd65a8f676f281cdf8 7539e01019dbef010a699b75c3000de17fdfa197 6025729781c1f457af3988c8b80fbee1912b672333631df6842f657483cb8bb3
GET /wp-content/uploads/2017/06/hosttech.png HTTP/1.1
Host: www.webhostinganbieter.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://82.220.38.150/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 22:24:58 GMT
content-type: image/png
content-length: 1154
cache-control: private, max-age=604800
expires: Sat, 11 May 2024 22:24:58 GMT
set-cookie: resolution=deleted; expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0
last-modified: Tue, 13 Mar 2018 09:19:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.bitblokes.de/wp-content/uploads/2017/10/tor-powering-digital-resistance.jpg | 80.241.216.24 | 200 OK | 11 kB |
URL GET HTTP/1.1www.bitblokes.de/wp-content/uploads/2017/10/tor-powering-digital-resistance.jpg IP80.241.216.24:443
CertificateIssuerLet's Encrypt Subjectwww.bitblokes.de Fingerprint8F:0B:91:2D:46:92:88:96:0C:76:AC:E1:D3:1E:77:62:86:5F:C5:1F ValidityThu, 18 Apr 2024 08:24:16 GMT - Wed, 17 Jul 2024 08:24:15 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 560x294, Scaling: [none]x[none], YUV color, decoders should clamp Hash98f1b574207c77ee7868026f619a61a2 00090d57569ae3350cdcc45752154c13fe3960f3 f3315947d16bf02add5735210def71f80ea182fb4ea3c4df1cc88dc1ee344317
GET /wp-content/uploads/2017/10/tor-powering-digital-resistance.jpg HTTP/1.1
Host: www.bitblokes.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://82.220.38.150/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:24:58 GMT
Server: Apache/2.4.46 (Ubuntu)
X-Frame-Options: SAMEORIGIN
Vary: Accept
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 19 Apr 2019 08:15:20 GMT
ETag: "2afe-586ddb840d1db"
Accept-Ranges: bytes
Content-Length: 11006
Cache-Control: max-age=31536000, public
Expires: Sun, 04 May 2025 22:24:58 GMT
Referrer-Policy:
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Permissions-Policy: interest-cohort=()
X-WebP-Express: Redirected directly to existing webp
Pragma: public
X-Powered-By: W3 Total Cache/2.6.1
Keep-Alive: timeout=5, max=100
Content-Type: image/webp
|
|
| 82.220.38.150/favicon.ico | 82.220.38.150 | 404 Not found | 0 B |
URL GET HTTP/1.082.220.38.150/favicon.ico IP82.220.38.150:80 ASN#9044 BSE Software GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 82.220.38.150
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://82.220.38.150/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not found
Date: Sat, 04 May 2024 22:24:59 GMT
|
|